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DETAILED ACTION 

1 . This action is in response to the communication field on April 27, 2001 . Claims 1 
- 14 were received for consideration. No preliminary amendments for the claims were 
received. Claims 1 - 14 are currently under consideration. 

Information Disclosure Statement 

2. Initialed and dated copies of the Applicant's IDS form are attached to the Office 
action. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

3. Claims 1 -6 and 8- 13 are rejected under 35 U.S.C. 102(b) as being anticipated 
by Thuraisngham et al. (U.S. Patent 5,355,474). 

Regarding claim 1, Thuraisngham discloses: 

A method for restricting access to information, said method comprising: 
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receiving a request from a requester, said request associated with a plurality of 
request levels of a corresponding plurality of dimensions (column 4 lines 29 - 52); and 

comparing each of the plurality of request levels with each of a corresponding set 
of security levels (column 4 lines 29 - 52). 

Regarding claim 8, Thuraisngham discloses: 

A computer readable medium for storing a plurality of instructions for restricting 
access to information, said plurality of instructions comprising: 

receiving a request from a requester, said request associated with a plurality of 
request levels of a corresponding plurality of dimensions (column 4 lines 29 - 52); and 

comparing each of the plurality of request levels with each of a corresponding set 
of security levels (column 4 lines 29 - 52). 

Claim 2 is rejected as applied above in rejecting claim 1 . Furthermore, Thuraisngham 
discloses: 

The method of claim 1 , further comprising: 

retrieving the set of security levels from a plurality of sets of security levels, 
wherein each of the plurality of sets of security levels are associated with at least one 
requestor (column 3 lines 59 - 63). 

Claim 3 is rejected as applied above in rejecting claim 1 . Furthermore, Thuraisngham 
discloses: 



Application/Control Number: 09/844,717 Page 4 

Art Unit: 2131 

The method of claim 1 , further comprising: 

generating a query for the request with the request levels, wherein each of the 
plurality of request levels are equal or exceed each of the corresponding set of security 
levels (column 9 line 50 - column 10 line 13); and 

generating a query with at least one of the security levels, wherein at least one of 
the security levels exceeds a corresponding one of the request levels (column 9 line 50 
-column 10 line 13). 

Claim 4 is rejected as applied above in rejecting claim 1 . Furthermore, Thuraisngham 
discloses: 

The method of claim 1 , wherein the request is associated with one or more 

request constraints, and further comprising: 

retrieving one or more security constraints (column 8 lines 30 - 59); and 
comparing each of the request constraints to a corresponding one of the security 

constraints (column 25 line 55 - column 26 line 20). 

Claim 6 is rejected as applied above in rejecting claim 1 . Furthermore, Thuraisngham 
discloses: 

The method of claim 1 , further comprising: 

determining whether the requester is in a restricted group (column 10 line 53 - 
column 11 line 65); 
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wherein the requester is in a restricted group, adding a request level to the 
request, wherein the added request level indicates that the requester is in the 
restricted group (column 10 line 53 - column 1 1 line 65); and 

wherein the requester is in an unrestricted group, adding request levels to the 
request, wherein the added request level indicates that the requester is in the 
unrestricted group (column 10 line 53 - column 1 1 line 65). 

Claim 9 is rejected as applied above in rejecting claim 8. Furthermore, Thuraisngham 
discloses: 

The computer readable medium of claim 8, wherein the plurality of instructions 
further comprising: 

retrieving the set of security levels from a plurality of sets of security levels, 
wherein each of the plurality of sets of security levels are associated with at 
least one requester (column 3 line 59 - 63). 

Claim 10 is rejected as applied above in rejecting claim 8. Furthermore, Thuraisngham 
discloses: 

The computer readable medium of claim 8, wherein the plurality of instructions 
further comprising: 

generating a query for the request, wherein each of the plurality of request levels 
are equal or exceed each of the corresponding set of security levels (column 9 line 50 - 
column 10 line 13); and 
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generating a query with at least one of the security levels, wherein at least one of 
the security levels exceeds a corresponding one of the request levels (column 9 line 50 
- column 10 line 13). 

Claim 1 1 is rejected as applied above in rejecting claim 8. Furthermore, Thuraisngham 
discloses: 

The computer readable medium of claim 8, wherein the request is associated 
with one or more request constraints, and the plurality of instructions further comprising: 
retrieving one or more security constraints (column 8 lines 30 - 59); and 
comparing each of the request constraints to a corresponding one of the security 
constraints (column 25 line 55 - column 26 line 20). 

Claim 13 is rejected as applied above in rejecting claim 8. Furthermore, Thuraisngham 
discloses: 

The computer readable medium of claim 8, wherein the plurality of instructions 
further comprising: 

determining whether the requestor is in a restricted group (column 10 line 53 - 
column 11 line 65); 

wherein the requester is in a restricted group, adding a request level to the 
request, wherein the added request level indicates that the requester is in the restricted 
group (column 10 line 53 - column 1 1 line 65); and 
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wherein the requester is in an unrestricted group, adding request levels to the 
request, wherein the added request level indicates that the requestor is in the 
unrestricted group (column 10 line 53 - column 1 1 line 65). 

Claim 5 is rejected as applied above in rejecting claim 4. Furthermore, Thuraisngham 
discloses: 

The method of claim 4, further comprising: 

generating the query wherein each of the request constraints is equivalent to the 
corresponding one of the security constraints (column 10 lines 35 - 52); and 

denying the request, wherein one of the request constraints is different from the 
corresponding one of the security constraints (column 10 lines 35 - 52). 

Claim 12 is rejected as applied above in rejecting claim 1 1 . Furthermore, 
Thuraisngham discloses: 

The computer readable medium of claim 1 1 , wherein the plurality of instructions 
further comprising: 

generating the query wherein each of the request constraints is equivalent to the 
corresponding one of the security constraints (column 10 lines 35 - 52); and 

denying the request, wherein one of the request constraints is different from the 
corresponding one of the security constraints (column 10 lines 35-52). 



Application/Control Number: 09/844,717 
Art Unit: 2131 



Page 8 



Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

4. Claims 7 and 14 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Thuraisngham et al. (U.S. Patent 5,355,474) in view of Weissman et al. (U.S. Patent 
6,212,524). 

Claim 7 is rejected as applied above in rejecting claim 6. Furthermore, Thuraisngham 
discloses: 

The method of claim 6, further comprising: 

determining one or more measures associated with the request (column 4 lines 
29 - 52); and 

comparing each of the requested levels and the added levels to a corresponding 
plurality of aggregate levels (column 2 lines 55 - column 3 line 7, column 4 lines 29 - 
52). 

Thuraisngham does not explicitly disclose selecting a stargroup associated with the one 
or more measures associated with the request, wherein the stargroup further comprises 
one or more stars. Weissman discloses the use of multiple stargroups in a stargroup 
schema as a way to organize data (column 12 lines 24 - 48). Thuraisngham discusses 
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a dimensional database, but does explicitly state that it must be in a star scheme. 
Weissman states, "in a dimensional datamart, the data is typically organized as a star 
schema" (column 2 lines 26 - 33). Weissman further states, "the advantage of such a 
scheme is that it supports a top down business approach to the definition of the 
schema" (column 2 lines 35 - 40) and also "consistent and flexible" (column 2 lines 42 - 
44). It can be seen that the security method disclosed by Thuraisngham can be used in 
conjunction with the star schema disclosed by Weissman, by the disclosure by 
Weissman that "in some embodiments of the invention, the metadata also includes 
security information" (column 8 lines 21 - 25). Weissman further states "the security 
information defines the level of access for various users to the various tables and fields 
in the datamart" (column 8 lines 21 - 25). This provides a top level view of the invention 
of Thuraisngham, which uses security information which automatically restricts access 
to the data. Therefore, it would have been obvious to one of ordinary skill in the art at 
the time the applicant's invention was made to combine the security method disclosed 
by Thuraisngham with the star schema used by Weissman to provide a top down 
approach to the definition of schema, and to use a scheme that is both consistent and 
flexible. 

Claim 14 is rejected as applied above in rejecting claim 13. Furthermore, 
Thuraisngham discloses: 

The computer readable medium of claim 13, wherein the plurality of instructions 
further comprising: 



Application/Control Number: 09/844,717 Page 10 

Art Unit: 2131 

determining one or more measures associated with the request (column 4 lines 
29 - 52); 

comparing each of the requested levels and the added levels to a corresponding 
plurality of aggregate levels (column 2 lines 55 - column 3 line 7, column 4 lines 29 - 
52). 

Thuraisngham does not explicitly disclose selecting a stargroup associated with the one 
or more measures associated with the request, wherein the stargroup further comprises 
one or more stars. Weissman discloses the use of multiple stargroups in a stargroup 
schema as a way to organize data (column 12 lines 24 - 48). Thuraisngham discusses 
a dimensional database, but does explicitly state that it must be in a star scheme. 
Weissman states, "in a dimensional datamart, the data is typically organized as a star 
schema" (column 2 lines 26 - 33). Weissman further states, "the advantage of such a 
scheme is that it supports a top down business approach to the definition of the 
schema" (column 2 lines 35 - 40) and also "consistent and flexible" (column 2 lines 42 - 
44). It can be seen that the security method disclosed by Thuraisngham can be used in 
conjunction with the star schema disclosed by Weissman, by the disclosure by 
Weissman that "in some embodiments of the invention, the metadata also includes 
security information" (column 8 lines 21 - 25). Weissman further states "the security 
information defines the level of access for various users to the various tables and fields 
in the datamart" (column 8 lines 21 - 25). This provides a top level view of the invention 
of Thuraisngham, which uses security information which automatically restricts access 
to the data. Therefore, it would have been obvious to one of ordinary skill in the art at 
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the time the applicant's invention was made to combine the security method disclosed 
by Thuraisngham with the star schema used by Weissman to provide a top down 
approach to the definition of schema, and to use a scheme that is both consistent and 
flexible. 



5. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Kaveh Abrishamkar whose telephone number is 703- 
305-8892. The examiner can normally be reached on Monday thru Friday 8-5. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on 703-305-9648. The fax phone number for 
the organization where this application or proceeding is assigned is 703-872-9306. 

Any inquiry of a general nature or relating to the status of this application or 
proceeding should be directed to the receptionist whose telephone number is 703-305- 
3900. 
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